2005-08-03 08:00:00
mitre
PUBLISHED
Contrexx before 1.0.5 allows remote attackers to obtain sensitive information via a direct request to /config/version.xml.